Published: 08/04/2013 Updated: 22/08/2013

CVSS v2 Base Score: 7.1 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 632

Vector: AV:N/AC:H/Au:S/C:C/I:C/A:C

Buffer overflow in the NVIDIA GPU driver prior to 304.88, 310.x prior to 310.44, and 313.x prior to 313.30 for the X Window System on UNIX, when NoScanout mode is enabled, allows remote authenticated users to execute arbitrary code via a large ARGB cursor.

Vulnerable Product	Search on Vulmon	Subscribe to Product
nvidia gpu driver 313.00
nvidia gpu driver 195.22
nvidia gpu driver 310.00
nvidia gpu driver

Debian Bug report logs - #704547 CVE-2013-0131: NVIDIA UNIX GPU Driver ARGB Cursor Buffer Overflow in "NoScanout" Mode Package: nvidia-glx; Maintainer for nvidia-glx is Debian NVIDIA Maintainers <pkg-nvidia-devel@listsaliothdebianorg>; Source for nvidia-glx is src:nvidia-graphics-drivers (PTS, buildd, popcon) Reported by ...

NVIDIA graphics drivers could be made to run programs as an administrator ...

CWE-119 http://www.nvidia.com/object/product-security.html http://nvidia.custhelp.com/app/answers/detail/a_id/3290 http://www.kb.cert.org/vuls/id/771620 http://security.gentoo.org/glsa/glsa-201304-01.xml https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=704547 https://usn.ubuntu.com/1799-1/https://nvd.nist.gov https://www.kb.cert.org/vuls/id/771620

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-0131

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect